Relationship-based access control for resharing in decentralized online social networks

Gay, Richard; Hu, Jinwei; Mantel, Heiko; Mazaheri, Sogol

Relationship-based access control for resharing in decentralized online social networks

Publikationstyp

Conference Paper

Date Issued

2017-10

Sprache

English

Author(s)

Gay, Richard

Hu, Jinwei

Mantel, Heiko

Mazaheri, Sogol

TORE-URI

http://hdl.handle.net/11420/13845

First published in

Lecture notes in computer science

Number in series

10723 LNCS

Start Page

18

End Page

34

Citation

Lecture Notes in Computer Science 10723 LNCS: 18-34 (2018)

Contribution to Conference

10th International Symposium on Foundations and Practice of Security, FPS 2017

Publisher DOI

10.1007/978-3-319-75650-9_2

Scopus ID

2-s2.0-85042544355

Publisher

Springer International Publishing AG

Decentralized online social networks (DOSNs) have adopted quite coarse-grained policies for sharing messages with friends of friends (i.e., resharing). They either forbid it completely or allow resharing of messages only without any possibility to constrain their subsequent distribution. In this article, we present a novel enforcement mechanism for securing resharing in DOSNs by relationship-based access control and user-determined privacy policies. Our mechanism supports resharing and offers users control over their messages after resharing. Moreover, it addresses the fact that DOSNs are run by multiple providers and honors users’ choices of which providers they trust. We clarify how our mechanism can be effectively implemented by a prototype for the DOSN Diaspora*. Our experimental evaluation shows that controlling privacy with our prototype causes only a rather small performance overhead.

Subjects

Access control

Decentralized online social networks

Privacy

DDC Class

004: Informatik

Options

Relationship-based access control for resharing in decentralized online social networks